Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3139352e38382e38362e302f32342d3234203d3e203531373635.roa
File: 3139352e38382e38362e302f32342d3234203d3e203531373635.roa (raw, json)
Hash identifier: WXZDh7cpttmpwIhZu38e4TmIqWdTcvcvK3a/dd09nMU=
Subject key identifier: B5:53:57:1B:37:C2:33:31:06:35:6D:17:90:42:24:78:DE:5D:55:AF
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 26EFA9E84A284024BF49B51E1029C9F86851CF85
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3139352e38382e38362e302f32342d3234203d3e203531373635.roa
Signing time: Sat 22 Oct 2022 04:34:19 +0000
ROA not before: Sat 22 Oct 2022 04:29:19 +0000
ROA not after: Sat 21 Oct 2023 04:34:19 +0000
asID: 51765
IP address blocks: 195.88.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:ef:a9:e8:4a:28:40:24:bf:49:b5:1e:10:29:c9:f8:68:51:cf:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:19 2022 GMT
Not After : Oct 21 04:34:19 2023 GMT
Subject: CN=B553571B37C2333106356D1790422478DE5D55AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:66:03:7b:b7:6a:d5:8c:51:22:e4:5e:9d:b4:
65:ac:a5:7b:64:53:76:0d:d2:9d:00:f2:37:20:c3:
de:4e:60:85:61:f2:e9:cd:c5:6e:98:da:f5:da:eb:
e5:25:fb:fa:4e:61:cf:e6:c9:2a:3e:25:70:83:c6:
fb:46:de:b8:72:af:93:6b:73:d8:25:be:a4:e8:c9:
16:58:f0:7e:d4:3e:6b:db:20:b1:d0:1c:c2:f5:cd:
03:2e:15:17:b1:8d:f6:35:10:9a:15:d3:b9:1e:01:
69:bc:40:b7:d3:cc:33:2d:de:e2:2d:44:92:df:86:
a2:3a:f9:12:aa:f8:18:bd:18:0a:8b:44:17:79:81:
db:b1:55:53:15:c0:ba:34:db:da:62:21:65:60:40:
c7:97:08:2e:df:59:fe:10:6f:50:1c:7d:46:f7:e6:
de:76:f9:06:5d:0d:71:b6:0d:06:83:f3:86:23:56:
9e:79:ca:d9:98:01:35:66:eb:6d:a8:77:ab:05:c8:
46:b9:f7:9e:7e:55:1a:99:a1:f3:ef:6c:9d:8d:ca:
d4:80:8f:17:02:25:bd:d1:cb:55:67:b1:60:d5:15:
be:77:81:82:f4:5a:62:99:58:f4:3f:73:e2:cf:ac:
39:48:59:35:8e:e5:15:3c:58:13:49:b0:bd:75:fb:
4b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:53:57:1B:37:C2:33:31:06:35:6D:17:90:42:24:78:DE:5D:55:AF
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3139352e38382e38362e302f32342d3234203d3e203531373635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.86.0/24
Signature Algorithm: sha256WithRSAEncryption
31:b7:db:b6:d3:77:97:2c:f3:44:68:5d:55:ec:d9:ca:61:31:
d7:92:6a:d1:20:69:46:64:aa:68:c0:5c:19:1f:e0:7f:f0:91:
db:10:4b:75:41:33:72:fc:b8:3f:fe:c9:fb:a8:18:4f:43:ed:
97:e4:74:0b:1c:be:4c:b4:3e:6f:e6:b4:37:61:8b:e8:aa:cf:
35:ef:86:6d:30:59:dc:0d:5b:1d:19:89:5a:c6:98:75:f7:88:
90:52:6c:0b:fe:c3:77:be:c8:d8:42:0c:98:c6:c1:58:52:81:
76:de:d5:d1:e8:56:00:29:8d:dd:74:44:72:8d:2c:5e:f1:2d:
86:94:fa:98:2d:fe:5e:e3:17:5b:35:17:c9:58:44:19:a2:bb:
bb:e9:1e:04:40:6e:ad:89:63:89:fd:c0:bb:2d:c5:1a:2e:fe:
5c:8a:3f:1c:6a:c9:cb:0f:08:de:e7:bd:fa:0d:61:68:c8:ac:
59:de:de:6f:5c:39:60:c2:96:fb:16:3d:aa:59:a1:db:84:5c:
8b:0f:d7:5f:62:9a:44:8c:9b:ca:52:c5:58:08:47:98:3e:d4:
2b:a9:68:b2:9a:22:e4:d2:1d:30:09:f9:9a:79:68:6d:8d:13:
84:b5:2e:4b:89:2e:64:d7:39:18:9e:d4:ec:d9:44:e3:a2:b9:
74:73:94:22
-----BEGIN CERTIFICATE-----
MIIE5TCCA82gAwIBAgIUJu+p6EooQCS/SbUeECnJ+GhRz4UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTZiNjVkNDcwOWY2Y2ZkOTk5YTI4Nzc4OTM5MmJhYTZk
M2E1ZGNlYTAeFw0yMjEwMjIwNDI5MTlaFw0yMzEwMjEwNDM0MTlaMDMxMTAvBgNV
BAMTKEI1NTM1NzFCMzdDMjMzMzEwNjM1NkQxNzkwNDIyNDc4REU1RDU1QUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjZgN7t2rVjFEi5F6dtGWspXtk
U3YN0p0A8jcgw95OYIVh8unNxW6Y2vXa6+Ul+/pOYc/mySo+JXCDxvtG3rhyr5Nr
c9glvqToyRZY8H7UPmvbILHQHML1zQMuFRexjfY1EJoV07keAWm8QLfTzDMt3uIt
RJLfhqI6+RKq+Bi9GAqLRBd5gduxVVMVwLo029piIWVgQMeXCC7fWf4Qb1AcfUb3
5t52+QZdDXG2DQaD84YjVp55ytmYATVm622od6sFyEa5955+VRqZofPvbJ2NytSA
jxcCJb3Ry1VnsWDVFb53gYL0WmKZWPQ/c+LPrDlIWTWO5RU8WBNJsL11+0vjAgMB
AAGjggHvMIIB6zAdBgNVHQ4EFgQUtVNXGzfCMzEGNW0XkEIkeN5dVa8wHwYDVR0j
BBgwFoAUprZdRwn2z9mZood4k5K6ptOl3OowDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzQvQTZCNjVENDcwOUY2Q0ZEOTk5QTI4Nzc4OTM5MkJBQTZE
M0E1RENFQS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3ByWmRSd24yejltWm9v
ZDRrNUs2cHRPbDNPby5jZXIwgYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4Zq
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
NC8zMTM5MzUyZTM4MzgyZTM4MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNTMx
MzczNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQAw1hWMA0GCSqGSIb3DQEBCwUAA4IBAQAxt9u203eX
LPNEaF1V7NnKYTHXkmrRIGlGZKpowFwZH+B/8JHbEEt1QTNy/Lg//sn7qBhPQ+2X
5HQLHL5MtD5v5rQ3YYvoqs8174ZtMFncDVsdGYlaxph194iQUmwL/sN3vsjYQgyY
xsFYUoF23tXR6FYAKY3ddERyjSxe8S2GlPqYLf5e4xdbNRfJWEQZoru76R4EQG6t
iWOJ/cC7LcUaLv5cij8casnLDwje5736DWFoyKxZ3t5vXDlgwpb7Fj2qWaHbhFyL
D9dfYppEjJvKUsVYCEeYPtQrqWiymiLk0h0wCfmaeWhtjROEtS5LiS5k1zkYntTs
2UTjorl0c5Qi
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net